Closed Bug 550691 Opened 14 years ago Closed 13 years ago

SSL Connection Partially Encrypted ...until the page is refreshed

Categories

(Firefox :: General, defect)

Product:
Firefox
Component:
General
Version:
3.6 Branch
Platform:
x86
All
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED WORKSFORME

People

(Reporter: nightsoul.blackps, Unassigned)

Details

(Keywords: qawanted)

Attachments

(7 files)

the problem
120.18 KB, image/png
Details
the problem 2
124.93 KB, image/png
Details
but it's not a complete,html only hope this helps
39.84 KB, text/html
Details
another one from auctiva sign out page
9.75 KB, text/html
Details
Source of site.
10.87 KB, text/plain
Details
Same problem,here is the source.
24.33 KB, text/plain
Details
what i mean.
111.82 KB, image/png
Details 
User-Agent:       Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6
Build Identifier: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6

I don't know if this is because i`m using a socks the problem is that sometimes the connection says it's partially encrypted ,i have seen this problem in yahoo,gmail and many other sites,see pics for information,i have seen this problem in 3.5

Reproducible: Always
Attached image the problem 

    
    

    
  

      
      
      
      

        Attached image
          
        the problem 2
      

    


  

    
    

    
  
Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.9.2) Gecko/20100115 Firefox/3.6 (.NET CLR 3.5.30729) ID:20100115144158

WFM w/o using a proxy. Can you test the sites w/o using the SOCKS proxy and see if the issue persists. It sounds like either the proxy or an extension is added some non-ssl content

    
    

    
  
i have seen this problem on yahoo with a clean profile,no socks,no addons ,no nothing..very strange

    
    

    
  
Usually you can see it on google mail if you have set always use https

    
    

    
  
Next time you come across this, can you do a file -> save page as -> web page, complete and attach to the bug? This will hopefully point to what is on the page that isn't encrypted

    
    

    
  
ok sure

    
    

    
  


  

    
    

    
  
I am not seeing any non-ssl requests in the attachments. Do you always see the partial ssl message when you go to the sites or is it intermittent? Next time you see this please do the following -> Go to the View Menu and select Page Source. Select all the text and paste into a text file. Attach the text file to the bug.

    
    

    
  
Sometimes only.

    
    

    
  

      
      
      
      

        Attached file
          
        Source of site.
      

    


  

    
    

    
  
The source of the site includes a Javascript call to a non-secure element (http://auctiva.com/images/blank.gif) on line 296. The call to a non-secure item would cause the legitimate partially encrypted warning.

    
    

    
  
Sometimes i have seen the problem on yahoo login page. https://login.yahoo.com/config/login_verify2?&.src=ym

    
    

    
  
The problem is that sometimes you get the warning sometimes not,when it's the correct information?

    
    

    
  


  

    
    

    
  
Sorry for posting again but i want to say the most frequent is in google e-mail this problem,i hope this helps identifying it and solve as it's very frustrating.

    
  
OS: Windows XP → All
Summary: there is a problem with ssl → SSL Connection Partially Encrypted ...until the page is refreshed

    
    

    
  
I have not been able to reproduce on my setups. Adding qa keyword and cc'ing others to get some additional eyes
Keywords: qawanted

    
    

    
  
This is happening reliably on my company's website.  Go to limebits.com and click on sign-in.  There will be a warning that the sign-in page is partially encrypted.  But if you refresh the sign-in page, the warning goes away.  The Live HTTP headers plugin shows there is an unencrypted google-analytics request happening (triggered by the clicking on the sign-in link), but that request is supposed to happen in the context of the home page, not the sign-in page.  Is this a bug where Firefox is wrongly considering the google-analytics request to be part of the sign-in page when determining whether the page is fully encrypted?

    
    

    
  
I think something like                                  <a id="ygmasignout" href="http://login.yahoo.com/config/login?logout=1&.intl=us&.done=http%3A%2F%2Fwww.yahoo.com" target="_top">Sign Out</a> or                                      Hi, <a id="ygmausername" href="http://profiles.yahoo.com/" target="_blank" class="sp lst" name="ygmausername">asd</a>   can cause the page to be partially encrypted and if you refresh the same page will become fully encrypted,this is not strange at last?

    
    

    
  
(In reply to comment #21)
> This is happening reliably on my company's website.  Go to limebits.com and
> click on sign-in.  There will be a warning that the sign-in page is partially
> encrypted.  But if you refresh the sign-in page, the warning goes away.  The
> Live HTTP headers plugin shows there is an unencrypted google-analytics request
> happening (triggered by the clicking on the sign-in link), but that request is
> supposed to happen in the context of the home page, not the sign-in page.  Is
> this a bug where Firefox is wrongly considering the google-analytics request to
> be part of the sign-in page when determining whether the page is fully
> encrypted?

You will no longer see this behavior on limebits.com as we just today deployed a workaround.  If you would like to see the old behavior, let me know, and I will deploy an instance of our prior release on a different host.

    
    

    
  
I know how you can see the problem,go to your gmail account ,enter a e-mail with pictures and click show pictures for that e-mail and you connection will become insecure because you are seeing the pictures from http and not secur 
e https i think,is this not wrong only for pics to say the connection is partially encrypted?

    
    

    
  

      
      
      
      

        Attached image
          
        what i mean.
      

    


  

    
  
Status: UNCONFIRMED → RESOLVED
Closed: 14 years ago
Resolution: --- → DUPLICATE

    
    

    
  
You ignored me and you people don't even know this is a new (old) bug 506008

    
  
Status: RESOLVED → UNCONFIRMED
Resolution: DUPLICATE → ---

    
    

    
  
Sorry but i`m not sure it's the same bug.
Version: unspecified → 3.6 Branch

    
    

    
  
Reporter, Firefox 4.0.1 has been released, and it features significant improvements over previous releases. Can you please update to Firefox 4.0.1 or later, and retest your bug? Please also create a fresh profile (
http://support.mozilla.com/kb/Managing+profiles), update your plugins (Flash, Java, Quicktime, Reader, etc) and update your graphics driver and Operating system to the latest versions available. 

If you still continue to see this issue, please comment. If you do not, please close this bug as RESOLVED > WORKSFORME

filter: prefirefox4uncobugs

    
  
Status: UNCONFIRMED → RESOLVED
Closed: 14 years ago13 years ago
Resolution: --- → WORKSFORME

          You need to log in
          before you can comment on or make changes to this bug.
        






  

    
  







  

    

      
Attachment

      

      
      
      
      
    

    

      

        

          

            
General

            

              Creator: 



            

            
Created: 

            
Updated: 

            
Size: